1186775 – Cannot install git package(s) with "transactional-update pkg install" command

Bug 1186775 - Cannot install git package(s) with "transactional-update pkg install" command

Summary: Cannot install git package(s) with "transactional-update pkg install" command

Status:	RESOLVED DUPLICATE of bug 1185625

Alias:	None

Product:	openSUSE Tumbleweed
Classification:	openSUSE
Component:	MicroOS (show other bugs)
Version:	Current
Hardware:	Other Other

Priority:	P5 - None Severity: Critical (vote)
Target Milestone:	---
Assignee:	Ignaz Forster
QA Contact:	E-mail List

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2021-06-02 16:27 UTC by Loic Devulder
Modified:	2023-07-04 07:20 UTC (History)
CC List:	1 user (show)

See Also:
Found By:	---
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
log file (5.14 KB, text/x-log) 2021-06-02 16:27 UTC, Loic Devulder	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Loic Devulder 2021-06-02 16:27:48 UTC

Created attachment 849900 [details]
log file

I tried to install git package(s) with the command "transactional-update pkg install git" but zypper failed with an error code of 107 because a package tries to write in a file on /etc, which is of course not allowed in MicroOS.

I was able to workaround this by installing the package in a "transactional-update shell" env (but of course I had the same issue in zypper).

I attached the transactional-update log file that contains the error.

Comment 1 Loic Devulder 2021-06-03 08:02:18 UTC

Same with open-iscsi package, one of its dependency has issue with /etc/ld.so.conf:
(1/2) Installing: libopeniscsiusr0_2_0-2.1.4-77.2.x86_64 ..........................................................................................................................................[done]
Additional rpm output:
/sbin/ldconfig: Warning: ignoring configuration file that cannot be opened: /etc/ld.so.conf: Permission denied
/sbin/ldconfig: Can't create temporary cache file /etc/ld.so.cache.fFe7QQ: Permission denied
warning: %post(libopeniscsiusr0_2_0-2.1.4-77.2.x86_64) scriptlet failed, exit status 1

Basically, all packages that try to write to /etc/ld.so.conf will have the issue.

Comment 2 Thorsten Kukuk 2021-06-04 08:02:52 UTC

This sounds more like a SELinux issue

Comment 3 Fabian Vogt 2021-06-07 08:38:16 UTC

Yep, anything calling ldconfig in transactional-update is broken: https://openqa.opensuse.org/tests/1770999#step/cockpit_service/10

Comment 4 Fabian Vogt 2021-06-07 12:37:06 UTC

The issue is that /etc/ inside the chroot does not have the correct label (yet).

In transactional-update < 3 it was set just after creating the overlay, before any operations inside: https://github.com/openSUSE/transactional-update/blob/0a6b2b179a41394891c4db88a792c9fb6a0249d7/sbin/transactional-update.in#L1076

With transactional-update 3 (tukit), it happens only afterwards: https://github.com/openSUSE/transactional-update/blob/cce4037e3bfe632ed6f2aa78d86d79a226f9b8aa/sbin/transactional-update.in#L1058

This is fixed by PR https://github.com/openSUSE/transactional-update/pull/63 (commit "Apply SElinux context on /etc in transaction").

Comment 5 OBSbugzilla Bot 2021-06-14 00:50:30 UTC

This is an autogenerated message for OBS integration:
This bug (1186775) was mentioned in
https://build.opensuse.org/request/show/899839 Factory / transactional-update

Comment 7 Ignaz Forster 2021-06-21 07:49:31 UTC

This problem has been solved with transactional-update 3.4.0. Closing as a duplicate to keep the conversation in one ticket.

*** This bug has been marked as a duplicate of bug 1185625 ***

Comment 8 Swamp Workflow Management 2021-06-28 19:41:07 UTC

SUSE-RU-2021:2192-1: An update that has 15 recommended fixes can now be installed.

Category: recommended (important)
Bug References: 1173842,1177149,1182525,1182544,1183442,1183521,1183539,1183856,1184529,1185224,1185226,1185625,1185766,1186775,1186842
CVE References: 
JIRA References: 
Sources used:
SUSE MicroOS 5.0 (src):    transactional-update-3.4.0-3.6.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.

Comment 12 Swamp Workflow Management 2022-02-18 11:19:05 UTC

SUSE-RU-2022:0487-1: An update that has 27 recommended fixes can now be installed.

Category: recommended (moderate)
Bug References: 1133891,1149131,1177149,1183521,1183539,1183856,1184529,1185224,1185226,1185625,1185766,1186213,1186775,1186842,1188110,1188322,1188648,1189728,1189807,1190383,1190574,1190788,1191475,1191945,1192078,1192242,1192302
CVE References: 
JIRA References: 
Sources used:
SUSE Linux Enterprise Module for Transactional Server 15-SP3 (src):    transactional-update-3.6.2-150300.3.3.1

NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.

Comment 13 Swamp Workflow Management 2022-02-18 11:22:41 UTC

openSUSE-RU-2022:0487-1: An update that has 27 recommended fixes can now be installed.

Category: recommended (moderate)
Bug References: 1133891,1149131,1177149,1183521,1183539,1183856,1184529,1185224,1185226,1185625,1185766,1186213,1186775,1186842,1188110,1188322,1188648,1189728,1189807,1190383,1190574,1190788,1191475,1191945,1192078,1192242,1192302
CVE References: 
JIRA References: 
Sources used:
openSUSE Leap 15.3 (src):    transactional-update-3.6.2-150300.3.3.1